ET EXPLOIT Possible ShixxNote buffer-overflow + remote shell attempt

SID: 2001385Rev: 60 views
History
Sourceet/open
CreatedJuly 30, 2010
UpdatedJuly 26, 2019
Classificationshellcode-detect
alert tcp $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT Possible ShixxNote buffer-overflow + remote shell attempt"; flow:established,to_server; content:"|68 61 63 6b 75|"; offset:126; depth:5; content:"|68 61 63 6b 90 61 61 61 61|"; offset:519; depth:9; reference:url,aluigi.altervista.org/adv/shixxbof-adv.txt; classtype:shellcode-detect; sid:2001385; rev:6; metadata:created_at 2010_07_30, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_07_26;)

References

urlaluigi.altervista.org/adv/shixxbof-adv.txt

Metadata

created at2010_07_30
confidenceMedium
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2019_07_26

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!